[Samba] Question RE expired autogenerated certificates
Jakob Curdes
jc at info-systems.de
Tue Jun 10 20:46:20 UTC 2025
Hello community, I am facing a situation where I need valid certificates
on our two DCs; I need to attach a mailserver via LDAPS which rejects
expired certificates and it seems there is no way to circumvent that.
The default certs are expired as the DCs have been setup more than two
years ago.
I know that the default certificates can be replaced by removing them
and restarting samba, but before doing such a thing on a production DC
I would like to make sure tihs has no unintended consequences.
Especially I am not sure where these certificates are used, also in
client-server communication? Will the clients accept the new certificate
straigtaway? We are talking about Ubuntu 22 LTS server.
Thank ou for helping, Jakob
More information about the samba
mailing list